Module org.elasticsearch.security
Class IPFilter
java.lang.Object
org.elasticsearch.xpack.security.transport.filter.IPFilter
-
Field Summary
FieldsModifier and TypeFieldDescriptionstatic final SecurityIpFilterRulestatic final String.http has been chosen for handling HTTP filters, which are not part of the profiles The profiles are only handled for the transport protocol, so we need an own kind of profile for HTTP.static final Setting.AffixSetting<List<String>> static final Setting.AffixSetting<List<String>> -
Constructor Summary
ConstructorsConstructorDescriptionIPFilter(Settings settings, AuditTrailService auditTrailService, ClusterSettings clusterSettings, XPackLicenseState licenseState) -
Method Summary
Modifier and TypeMethodDescriptionbooleanaccept(String profile, InetSocketAddress peerAddress) static voidaddSettings(List<Setting<?>> settings) voidsetBoundHttpTransportAddress(BoundTransportAddress boundHttpTransportAddress) voidsetBoundTransportAddress(BoundTransportAddress boundTransportAddress, Map<String, BoundTransportAddress> profileBoundAddress)
-
Field Details
-
HTTP_PROFILE_NAME
.http has been chosen for handling HTTP filters, which are not part of the profiles The profiles are only handled for the transport protocol, so we need an own kind of profile for HTTP. This name starts withs a dot, because no profile name can ever start like that due to how we handle settings- See Also:
-
ALLOW_BOUND_ADDRESSES_SETTING
-
IP_FILTER_ENABLED_HTTP_SETTING
-
IP_FILTER_ENABLED_SETTING
-
TRANSPORT_FILTER_ALLOW_SETTING
-
TRANSPORT_FILTER_DENY_SETTING
-
REMOTE_CLUSTER_FILTER_ALLOW_SETTING
-
REMOTE_CLUSTER_FILTER_DENY_SETTING
-
PROFILE_FILTER_DENY_SETTING
-
PROFILE_FILTER_ALLOW_SETTING
-
HTTP_FILTER_ALLOW_SETTING
-
HTTP_FILTER_DENY_SETTING
-
DISABLED_USAGE_STATS
-
DEFAULT_PROFILE_ACCEPT_ALL
-
-
Constructor Details
-
IPFilter
public IPFilter(Settings settings, AuditTrailService auditTrailService, ClusterSettings clusterSettings, XPackLicenseState licenseState)
-
-
Method Details
-
usageStats
-
accept
-
setBoundTransportAddress
public void setBoundTransportAddress(BoundTransportAddress boundTransportAddress, Map<String, BoundTransportAddress> profileBoundAddress) -
setBoundHttpTransportAddress
-
addSettings
-